US9270688B2 - Tool for the centralized supervision and/or hypervision of a set of systems having different security levels - Google Patents

Tool for the centralized supervision and/or hypervision of a set of systems having different security levels Download PDF

Info

Publication number
US9270688B2
US9270688B2 US13/125,760 US200913125760A US9270688B2 US 9270688 B2 US9270688 B2 US 9270688B2 US 200913125760 A US200913125760 A US 200913125760A US 9270688 B2 US9270688 B2 US 9270688B2
Authority
US
United States
Prior art keywords
systems
messages
display system
image data
gateways
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related, expires
Application number
US13/125,760
Other versions
US20120023177A1 (en
Inventor
Jean-Christophe Linden
Sébastien Breton
Pierre Oger
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Thales SA
Original Assignee
Thales SA
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Thales SA filed Critical Thales SA
Assigned to THALES reassignment THALES ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: BRETON, SEBASTIEN, LINDEN, JEAN-CHRISTOPHE, OGER, PIERRE
Publication of US20120023177A1 publication Critical patent/US20120023177A1/en
Application granted granted Critical
Publication of US9270688B2 publication Critical patent/US9270688B2/en
Expired - Fee Related legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/14Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
    • H04L63/1408Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic by monitoring network traffic

Definitions

  • the present invention relates to a tool for the supervision and/or hypervision of a set of systems of different security levels. It applies notably to the centralized supervision of several information systems when said systems are subjected to unequal security constraints.
  • a supervision tool assembles in one and the same location indicators originating from various supervised entities in order to offer an overview of the state of said entities.
  • a hypervision tool offers, in addition to the supervision tool, a synthetic view of the state indicators, correlations being able to be made between indicators originating from distinct entities.
  • the supervision centers are then installed in the network of highest security, the other networks being linked via one-way links to the supervision center in order to feed said center with state indicators. Since communications are made only in the uplink direction, no leakage of information present in the network of highest security level is possible.
  • the regulation applied to the level of the network of highest security usually induces the application of costly constraints, both from the technical point of view and in matters of training, organization and personnel authorization.
  • a supervision and/or hypervision tool must be able to transmit possible alarms in real time, which also excludes the solutions that make use of a manual operation for filtering the sensitive information.
  • One object of the invention is to propose a less costly supervision and/or hypervision system capable of operating in a network of relatively low security and making it possible to collect and centralize in real or virtually real time, without risk of compromising sensitive data, information originating from networks of higher security levels.
  • the subject of the invention is a tool for the centralized supervision and/or hypervision of a set of systems of different security levels, said systems transmitting messages, said tool comprising a display system, the tool being characterized in that at least one supervised system comprises one or more gateways for converting the transmitted messages to image data, said gateways transmitting said image data via a one-way link to the display system, at least one of the supervised systems being of a higher security level than the security level of the area in which the display system is placed.
  • the tool according to the invention carries out a semantic break of the information.
  • One advantage of this break is that the image data originating from the conversion is difficult to interpret by a programmable controller, unlike textual data, that can be directly used by an analysis software program. The creation of auxiliary channels is therefore made difficult.
  • the one-way link transmits information from the network of high protection level to a network of lower protection level.
  • At least one supervised system comprises a gateway capable of assembling several messages transmitted by said supervised system in order to generate a message with coarser semantic content.
  • This message assembly makes it possible to mix several items of information in order to reduce the risks of compromising sensitive data.
  • the one-way links are video links carrying out a display transfer from a gateway to a screen.
  • This embodiment reduces the risks of information technology intrusion, the link being dedicated solely to the display of images.
  • the display system may then comprise one or more screens, at least one screen being associated with each supervised system, a one-way link linking a supervised system to the screen or screens that are associated therewith.
  • a “wall of images” can therefore be produced so that a human operator having access to the display system has at his disposal an overview of the networks of different security levels.
  • At least one one-way link is a network link capable of transporting the image data
  • the display device comprising at least one screen linked to a processing module receiving said images, the processing module being fitted with a software program capable of representing the images originating from several networks on the same screen.
  • the messages are SNMP/UDP (“Simple Network Management Protocol”/“User Datagram Protocol”) messages
  • the gateway comprising an adapter capable of converting the SNMP/UDP messages to images.
  • At least one gateway is suitable for converting the messages to image data as a function of the semantic content of said messages, unlike what is done conventionally by simple tools for converting a data format.
  • the messages are state indicators, the images originating from the conversion of said messages being symbolic representations of the semantic content of said indicators.
  • a further subject of the invention is a method for the centralized supervision and/or hypervision of a set of systems of different security levels, at least one supervised system comprising one or more gateways and sensors and/or alarm devices transmitting messages, said gateways being linked to one and the same display system, the method comprising, for at least one supervised system of higher security level than the security level of the area in which the display system is placed, at least the following steps:
  • the method also comprises a step during which a gateway assembles several messages in order to create a message with coarser semantic content.
  • FIG. 1 a first embodiment of the hypervision tool according to the invention
  • FIG. 2 a second embodiment of the hypervision tool according to the invention
  • FIG. 3 a block diagram illustrating a first example of the method according to the invention
  • FIG. 4 a block diagram illustrating a second example of the method according to the invention.
  • FIG. 1 presents a first embodiment of the supervision/hypervision tool according to the invention.
  • the supervision/hypervision tool of FIG. 1 is designed to supervise independent networks 101 , 102 from an area 103 subjected to a lower level of security than at least one of the supervised networks 101 , 102 .
  • the first supervised network 101 is subjected to a maximum security level
  • the second supervised network 102 is subjected to an intermediate security level
  • the area 103 from which the networks are supervised is subjected to a minimal security level.
  • the tool according to the invention comprises a display system 135 placed in the area 103 of minimal security, the display system 135 comprising at least one screen, two screens 131 , 132 in the example of FIG. 1 .
  • the display system 135 allows a supervision agent 140 to know at all times the situation of the supervised networks 101 , 102 .
  • the first supervised network 101 comprises sensors and/or alarm devices 111 , 112 , 113 linked to a gateway 115 .
  • the sensors and/or alarm devices 111 , 112 , 113 generate messages, for example to indicate their state.
  • a temperature sensor 111 is capable of transmitting a message that can take optionally three different values: “normal temperature”, “high temperature”, “fire”; an alarm device 112 placed on a safe can transmit two optional states: “safe open” or “safe closed”; a workstation provided with an anti-intrusion detection software program can transmit optionally four states: “normal operation”, “intrusion attempt”, “intrusion detected” or “out of service”.
  • the messages are transmitted to the gateway 115 , for example via a computer network 117 of the Ethernet type.
  • the simple network management protocol SNMP is used to raise alarms.
  • the messages can then be conveyed to the gateway 115 via UDP “User Datagram Protocol”) datagrams, for example.
  • the gateway 115 converts the messages from the sensors and/or alarm devices 111 , 112 , 113 to images.
  • the codes or the textual data contained in the messages are interpreted by the gateway 115 which, depending on the nature and/or the value of the message, creates an image symbolizing the semantic content of the message.
  • the gateway receives messages as an input, but produces only images as an output, so that a considerable formal break is made by the gateway 115 .
  • an image in the form of a green diamond is produced when the received message is “normal temperature”, an orange diamond for the value “high temperature” and a red diamond when the message takes the “fire” value.
  • the images can be produced at frequent intervals so as to generate a video stream.
  • the gateway 115 combines several messages before converting the result of this combination to an image. For example, if the gateway 115 receives a “normal temperature” message from a first temperature sensor and another “high temperature” message from a second sensor that is present in the same network as the first sensor, then a synthetic form in order to represent these two items of information combined is generated, for example an orange hexagon instead of two respectively green and orange diamonds.
  • This assembly of information makes it possible to generate an image with coarser semantic content, in this instance, the generated image means “at least one of the two sensors has detected too high a temperature”. Thus, from an external point of view, only this coarse information can be known, thus limiting the risk of compromising sensitive data.
  • this assembly of data can be used if knowledge of the temperature on only one of the two sensors is confidential information.
  • the gateway 115 therefore carries out two processes to limit the leakage of confidential data: the assembly of information carried by the messages and the formal break described above.
  • this image is transmitted to the first screen 131 of the display system 135 via a one-way video link 151 .
  • the link 151 is produced so that no data can travel from the display device 135 to the gateway 115 .
  • the link 151 does not transport computer data packages; this link simply allows the transfer of display to a screen 131 that is remote from the gateway 115 .
  • the second supervised network 102 comprises a structure similar to that of the first network 101 , that is to say sensors and/or alarm devices 121 , 122 , 123 , 124 linked to a gateway 125 which transmits image data to the second screen 132 of the display device 135 via a second one-way link 152 .
  • each of the supervised networks 101 , 102 can comprise several gateways, the display transfer then being carried out for each of the gateways.
  • FIG. 2 shows a second embodiment of the supervision/hypervision tool according to the invention.
  • the supervision/hypervision tool of FIG. 2 is designed to supervise independent networks 201 , 202 from an area 203 subjected to a lower security level than at least one of the supervised networks 201 , 202 .
  • the first supervised network 201 is subjected to a maximum security level
  • the second supervised network 202 is subjected to an intermediate security level
  • the area 203 from which the networks are supervised is subjected to a minimal security level.
  • the tool according to the invention comprises a display system 235 placed in the area 203 of minimal security, the display system 235 comprising at least one screen 231 and a processing module 233 which is for example a computer station.
  • At least one gateway 215 , 225 that is present in a supervised network 201 , 202 converts the messages transmitted by sensors 211 , 212 , 213 , 221 , 222 , 223 to images.
  • the images are transmitted from each of the gateways 215 , 225 to the display device 235 via a one-way network link 251 , 252 and the use of a nonconnected protocol.
  • the images are then received by the processing module 233 which combines the images received from the various networks in order to produce a synthetic graphic representation, this representation being displayed on the screen 231 associated with the processing module 233 .
  • FIG. 3 a block diagram illustrating a first example of the method according to the invention.
  • sensors 311 , 312 , 313 , 321 , 322 , 323 , 324 of the network produce messages 360 , for example in the form of code or of text.
  • the semantic content of the messages 360 is interpreted and converted to image 370 by a gateway.
  • the previously produced images 370 are transmitted via a one-way link to the display device.
  • the display device uses the images 370 originating from the various networks to produce a graphic representation of the supervised situation.
  • FIG. 4 a block diagram illustrating a second example of the method according to the invention comprising an additional step of semantic assembly of messages.
  • sensors 411 , 412 , 413 , 421 , 422 , 423 , 424 of the network produce messages 460 , for example in the form of code or of text.
  • messages 460 are assembled to form a message 461 with coarser semantic content.
  • the semantic content of the messages 460 , 461 is interpreted and converted to image 470 by a gateway.
  • the previously produced images 470 are transmitted via a one-way link to the display device.
  • the display device uses the images 470 originating from the various networks to produce a graphic representation of the supervised situation.
  • the supervision/hypervision tool according to the invention may, for example, be used by an enterprise for supervising the integrity of its computer networks and of its safe rooms, these networks and rooms being independent of one another, certain networks and rooms being more sensitive than others.
  • the supervision/hypervision tool is preferably placed in a not very sensitive area, for example in the reception of the place of business.
  • a supervision agent with no particular need for qualification or accreditation is then responsible for monitoring the tool in order to transmit to the qualified people a possible alarm raised on one of the supervised systems.
  • the tool according to the invention is therefore used to carry out passive supervision by the agent, who has no role of intervening on the network that has raised the alarm.

Abstract

A tool for the supervision and/or hypervision of a set of systems of different security levels, the systems transmitting messages, includes a display system, and further includes, for each supervised network, at least one gateway for converting the messages to image data, said gateways transmitting said image data via a one-way video link to the display system, at least one of the supervised networks being of a higher security level than the area in which the display system is placed. The invention applies notably to the centralized supervision of several information systems when said systems are subjected to different security constraints.

Description

CROSS-REFERENCE TO RELATED APPLICATIONS
This application is a National Stage of International patent application PCT/EP2009/064003, filed on Oct. 23, 2009, which claims priority to foreign French patent application No. FR 0805918, filed on Oct. 24, 2008, the disclosures of which are incorporated by reference in their entirety.
BACKGROUND OF THE INVENTION
The present invention relates to a tool for the supervision and/or hypervision of a set of systems of different security levels. It applies notably to the centralized supervision of several information systems when said systems are subjected to unequal security constraints.
In order to supervise entities such as information systems, protected rooms, production or control systems, it is known practice to employ a centralized supervision or hypervision tool. A supervision tool assembles in one and the same location indicators originating from various supervised entities in order to offer an overview of the state of said entities. A hypervision tool offers, in addition to the supervision tool, a synthetic view of the state indicators, correlations being able to be made between indicators originating from distinct entities.
However, when the levels of sensitivity of the data handled on each of the networks are different, the centralized supervision of said networks becomes difficult because of the constraints imposed by the rules aimed at protecting the data. The interconnection of a first system, with a high security level, with a second system, with a lower security level, poses at least two types of problems: the leakage of sensitive information from the first system to the second system and the intrusions originating from the second system.
Conventionally, the supervision centers are then installed in the network of highest security, the other networks being linked via one-way links to the supervision center in order to feed said center with state indicators. Since communications are made only in the uplink direction, no leakage of information present in the network of highest security level is possible. However, the regulation applied to the level of the network of highest security usually induces the application of costly constraints, both from the technical point of view and in matters of training, organization and personnel authorization.
In order to place a supervision center in a network of lower security, in order to avoid the abovementioned constraints, it is known practice to use an interconnection system of multiple security levels. According to one operating mode, such a multilevel system is first configured in order to define what types of data are confidential. Labeling of the data streams is carried out in order to distinguish the confidential data streams from the data streams that are not very sensitive. It is therefore necessary to define manually, for each of the communication protocols used, labels and filtering rules to be applied. This manual configuration phase is protracted and costly. Moreover, the labels applied to the data streams must be signed by cryptographic keys, which requires the use of a key-management infrastructure.
Finally, a supervision and/or hypervision tool must be able to transmit possible alarms in real time, which also excludes the solutions that make use of a manual operation for filtering the sensitive information.
SUMMARY OF THE INVENTION
One object of the invention is to propose a less costly supervision and/or hypervision system capable of operating in a network of relatively low security and making it possible to collect and centralize in real or virtually real time, without risk of compromising sensitive data, information originating from networks of higher security levels. Accordingly, the subject of the invention is a tool for the centralized supervision and/or hypervision of a set of systems of different security levels, said systems transmitting messages, said tool comprising a display system, the tool being characterized in that at least one supervised system comprises one or more gateways for converting the transmitted messages to image data, said gateways transmitting said image data via a one-way link to the display system, at least one of the supervised systems being of a higher security level than the security level of the area in which the display system is placed.
The tool according to the invention carries out a semantic break of the information. One advantage of this break is that the image data originating from the conversion is difficult to interpret by a programmable controller, unlike textual data, that can be directly used by an analysis software program. The creation of auxiliary channels is therefore made difficult. Moreover, unlike what is done conventionally in the matter of security, the one-way link transmits information from the network of high protection level to a network of lower protection level.
According to one embodiment of the centralized supervision and/or hypervision tool according to the invention, at least one supervised system comprises a gateway capable of assembling several messages transmitted by said supervised system in order to generate a message with coarser semantic content.
This message assembly makes it possible to mix several items of information in order to reduce the risks of compromising sensitive data.
According to one embodiment of the centralized supervision and/or hypervision tool according to the invention, the one-way links are video links carrying out a display transfer from a gateway to a screen. This embodiment reduces the risks of information technology intrusion, the link being dedicated solely to the display of images. The display system may then comprise one or more screens, at least one screen being associated with each supervised system, a one-way link linking a supervised system to the screen or screens that are associated therewith. A “wall of images” can therefore be produced so that a human operator having access to the display system has at his disposal an overview of the networks of different security levels.
According to another embodiment of the centralized supervision and/or hypervision tool according to the invention, at least one one-way link is a network link capable of transporting the image data, the display device comprising at least one screen linked to a processing module receiving said images, the processing module being fitted with a software program capable of representing the images originating from several networks on the same screen. This embodiment makes it possible to obtain a synthetic representation of the state of the various networks on one and the same screen.
According to one embodiment of the centralized supervision and/or hypervision tool according to the invention, the messages are SNMP/UDP (“Simple Network Management Protocol”/“User Datagram Protocol”) messages, the gateway comprising an adapter capable of converting the SNMP/UDP messages to images.
According to one embodiment of the centralized supervision and/or hypervision tool according to the invention, at least one gateway is suitable for converting the messages to image data as a function of the semantic content of said messages, unlike what is done conventionally by simple tools for converting a data format.
According to one embodiment of the centralized supervision and/or hypervision tool according to the invention, the messages are state indicators, the images originating from the conversion of said messages being symbolic representations of the semantic content of said indicators.
A further subject of the invention is a method for the centralized supervision and/or hypervision of a set of systems of different security levels, at least one supervised system comprising one or more gateways and sensors and/or alarm devices transmitting messages, said gateways being linked to one and the same display system, the method comprising, for at least one supervised system of higher security level than the security level of the area in which the display system is placed, at least the following steps:
    • a gateway comprised by said supervised system receives and converts the transmitted messages to image data;
    • said gateway transmits, via a one-way link, the image data to the display system.
According to one application of the method according to the invention, the method also comprises a step during which a gateway assembles several messages in order to create a message with coarser semantic content.
BRIEF DESCRIPTION OF THE DRAWINGS
Other features will appear on reading the following nonlimiting detailed description given as an example and made with respect to the appended drawings which represent:
FIG. 1, a first embodiment of the hypervision tool according to the invention,
FIG. 2, a second embodiment of the hypervision tool according to the invention,
FIG. 3, a block diagram illustrating a first example of the method according to the invention,
FIG. 4, a block diagram illustrating a second example of the method according to the invention.
 DETAILED DESCRIPTION
FIG. 1 presents a first embodiment of the supervision/hypervision tool according to the invention. The supervision/hypervision tool of FIG. 1 is designed to supervise independent networks 101, 102 from an area 103 subjected to a lower level of security than at least one of the supervised networks 101, 102. In the example, the first supervised network 101 is subjected to a maximum security level, the second supervised network 102 is subjected to an intermediate security level, and the area 103 from which the networks are supervised is subjected to a minimal security level.
The tool according to the invention comprises a display system 135 placed in the area 103 of minimal security, the display system 135 comprising at least one screen, two screens 131, 132 in the example of FIG. 1. The display system 135 allows a supervision agent 140 to know at all times the situation of the supervised networks 101, 102.
The first supervised network 101 comprises sensors and/or alarm devices 111, 112, 113 linked to a gateway 115. The sensors and/or alarm devices 111, 112, 113 generate messages, for example to indicate their state. As an illustration, a temperature sensor 111 is capable of transmitting a message that can take optionally three different values: “normal temperature”, “high temperature”, “fire”; an alarm device 112 placed on a safe can transmit two optional states: “safe open” or “safe closed”; a workstation provided with an anti-intrusion detection software program can transmit optionally four states: “normal operation”, “intrusion attempt”, “intrusion detected” or “out of service”. The messages are transmitted to the gateway 115, for example via a computer network 117 of the Ethernet type. According to one embodiment of the supervision/hypervision tool according to the invention, the simple network management protocol SNMP is used to raise alarms. The messages can then be conveyed to the gateway 115 via UDP “User Datagram Protocol”) datagrams, for example.
The gateway 115 converts the messages from the sensors and/or alarm devices 111, 112, 113 to images. In other words, the codes or the textual data contained in the messages are interpreted by the gateway 115 which, depending on the nature and/or the value of the message, creates an image symbolizing the semantic content of the message. Thus, the gateway receives messages as an input, but produces only images as an output, so that a considerable formal break is made by the gateway 115. As an example, to reuse the aforementioned example of the temperature sensor, an image in the form of a green diamond is produced when the received message is “normal temperature”, an orange diamond for the value “high temperature” and a red diamond when the message takes the “fire” value. The images can be produced at frequent intervals so as to generate a video stream.
Moreover, according to one embodiment of the tool according to the invention, the gateway 115 combines several messages before converting the result of this combination to an image. For example, if the gateway 115 receives a “normal temperature” message from a first temperature sensor and another “high temperature” message from a second sensor that is present in the same network as the first sensor, then a synthetic form in order to represent these two items of information combined is generated, for example an orange hexagon instead of two respectively green and orange diamonds. This assembly of information makes it possible to generate an image with coarser semantic content, in this instance, the generated image means “at least one of the two sensors has detected too high a temperature”. Thus, from an external point of view, only this coarse information can be known, thus limiting the risk of compromising sensitive data. In the example, this assembly of data can be used if knowledge of the temperature on only one of the two sensors is confidential information. According to this embodiment, the gateway 115 therefore carries out two processes to limit the leakage of confidential data: the assembly of information carried by the messages and the formal break described above.
Once an image has been produced by the gateway 115, this image is transmitted to the first screen 131 of the display system 135 via a one-way video link 151. In other words, the link 151 is produced so that no data can travel from the display device 135 to the gateway 115. According to the embodiment shown in FIG. 1, the link 151 does not transport computer data packages; this link simply allows the transfer of display to a screen 131 that is remote from the gateway 115.
The second supervised network 102 comprises a structure similar to that of the first network 101, that is to say sensors and/or alarm devices 121, 122, 123, 124 linked to a gateway 125 which transmits image data to the second screen 132 of the display device 135 via a second one-way link 152.
According to another embodiment, each of the supervised networks 101, 102 can comprise several gateways, the display transfer then being carried out for each of the gateways.
FIG. 2 shows a second embodiment of the supervision/hypervision tool according to the invention. The supervision/hypervision tool of FIG. 2 is designed to supervise independent networks 201, 202 from an area 203 subjected to a lower security level than at least one of the supervised networks 201, 202. In the example, the first supervised network 201 is subjected to a maximum security level, the second supervised network 202 is subjected to an intermediate security level, and the area 203 from which the networks are supervised is subjected to a minimal security level.
According to this second embodiment, the tool according to the invention comprises a display system 235 placed in the area 203 of minimal security, the display system 235 comprising at least one screen 231 and a processing module 233 which is for example a computer station.
In the same manner as in the first embodiment shown in FIG. 1, at least one gateway 215, 225 that is present in a supervised network 201, 202 converts the messages transmitted by sensors 211, 212, 213, 221, 222, 223 to images.
Nevertheless, unlike the first embodiment, the images are transmitted from each of the gateways 215, 225 to the display device 235 via a one- way network link 251, 252 and the use of a nonconnected protocol. The images are then received by the processing module 233 which combines the images received from the various networks in order to produce a synthetic graphic representation, this representation being displayed on the screen 231 associated with the processing module 233.
FIG. 3, a block diagram illustrating a first example of the method according to the invention.
For a network to be supervised, initially 301, sensors 311, 312, 313, 321, 322, 323, 324 of the network produce messages 360, for example in the form of code or of text. Secondly 302, the semantic content of the messages 360 is interpreted and converted to image 370 by a gateway. Thirdly 303, the previously produced images 370 are transmitted via a one-way link to the display device.
Fourthly 304, the display device uses the images 370 originating from the various networks to produce a graphic representation of the supervised situation.
FIG. 4, a block diagram illustrating a second example of the method according to the invention comprising an additional step of semantic assembly of messages.
For a network to be supervised, initially 401, sensors 411, 412, 413, 421, 422, 423, 424 of the network produce messages 460, for example in the form of code or of text. Secondly 402, messages 460 are assembled to form a message 461 with coarser semantic content. Thirdly 403, the semantic content of the messages 460, 461 is interpreted and converted to image 470 by a gateway.
Fourthly 404, the previously produced images 470 are transmitted via a one-way link to the display device.
Fifthly 405, the display device uses the images 470 originating from the various networks to produce a graphic representation of the supervised situation.
The supervision/hypervision tool according to the invention may, for example, be used by an enterprise for supervising the integrity of its computer networks and of its safe rooms, these networks and rooms being independent of one another, certain networks and rooms being more sensitive than others. In this context, the supervision/hypervision tool is preferably placed in a not very sensitive area, for example in the reception of the place of business. A supervision agent with no particular need for qualification or accreditation is then responsible for monitoring the tool in order to transmit to the qualified people a possible alarm raised on one of the supervised systems. The tool according to the invention is therefore used to carry out passive supervision by the agent, who has no role of intervening on the network that has raised the alarm.

Claims (11)

The invention claimed is:
1. A supervision system for centralized supervision or hypervision of a plurality of systems having different security levels, said supervision system comprising:
a display system comprising one or more displays;
a plurality of systems configured to transmit messages, each of the messages comprising semantic content, and the plurality of systems being located in a different area than the display system; and
one or more gateways within at least one of the plurality of systems, wherein:
the one or more gateways are configured to convert each of the transmitted messages to a symbolic representation of its semantic content, the symbolic representation to be transmitted as image data, and the symbolic representation of the semantic content of each message being different from its corresponding message,
the one or more gateways are configured to transmit said image data via one or more one-way links to the display system to create a semantic break of the semantic content of the messages between the plurality of systems and the display system, and
at least one of the plurality of systems has a higher security level than the security level of an area in which the display system is located.
2. The supervision system as claimed in claim 1, wherein the one or more gateways are configured to assemble several messages transmitted by the at least one system to generate image data symbolizing coarser semantic content.
3. The supervision system as claimed in claim 1, wherein the one-way links are video links transferring the image data from the one or more gateways to the one or more displays of the display system.
4. The supervision system as claimed in claim 3, wherein at least one display of the one or more displays is associated with each of the plurality of systems, and one of the one or more one-way links connects each of the plurality of systems to the associated at least one display.
5. The supervision system as claimed in claim 1, wherein at least one of the one or more one-way links is a network link configured to transport the image data, and wherein the display system comprises a processing module connected to the one or more displays, the processing module configured to receive the image data, and the processing module configured to execute a software program enabling presentation of the image data from the plurality of systems on the same display of the display system.
6. The supervision system as claimed in claim 1, wherein the transmitted messages are SNMP/UDP messages, and the one or more gateways further comprise an adapter configured to convert semantic content of the SNMP/UDP messages to the image data.
7. The supervision system as claimed in claim 1, wherein the transmitted messages are state indicators.
8. A method for centralized supervision or hypervision of a plurality of systems having different security levels using a display system, the plurality of systems being located in a different area than the display system, at least one of the plurality of systems comprising one or more gateways configured to transmit messages, each of the messages comprising semantic content, said one or more gateways being linked to the same display system, the method comprising, for at least one of the plurality of systems having a higher security level than the security level of an area in which the display system is located:
receiving, by the one or more gateways within the at least one of the plurality of systems, the transmitted messages;
converting, by the one or more gateways, each of the transmitted messages to a symbolic representation of its semantic content, the symbolic representation to be transmitted as image data, and the symbolic representation of the semantic content of each message being different from its corresponding message; and
transmitting, by the one or more gateways and via a one-way link, the image data to the display system to create a semantic break of the semantic content of the messages between the plurality of systems and the display system.
9. The method as claimed in claim 8, further comprising assembling, by the gateway, several transmitted messages to create a message symbolizing coarser semantic content.
10. The supervision system as claimed in claim 1, wherein the one or more gateways are configured to transmit only said image data via the one or more one-way links to the display system.
11. The method as claimed in claim 8, wherein transmitting the image data to the display system comprises transmitting, by the one or more gateways and via the one-way link, only the image data to the display system.
US13/125,760 2008-10-24 2009-10-23 Tool for the centralized supervision and/or hypervision of a set of systems having different security levels Expired - Fee Related US9270688B2 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FR0805918A FR2937763B1 (en) 2008-10-24 2008-10-24 CENTRALIZED SUPERVISION AND / OR HYPERVISION TOOL OF A SET OF SYSTEMS OF DIFFERENT SECURITY LEVELS
FR0805918 2008-10-24
PCT/EP2009/064003 WO2010046480A1 (en) 2008-10-24 2009-10-23 Tool for the centralised supervision and/or hypervision of a set of systems having different security levels

Publications (2)

Publication Number Publication Date
US20120023177A1 US20120023177A1 (en) 2012-01-26
US9270688B2 true US9270688B2 (en) 2016-02-23

Family

ID=40909878

Family Applications (1)

Application Number Title Priority Date Filing Date
US13/125,760 Expired - Fee Related US9270688B2 (en) 2008-10-24 2009-10-23 Tool for the centralized supervision and/or hypervision of a set of systems having different security levels

Country Status (4)

Country Link
US (1) US9270688B2 (en)
EP (1) EP2351317B1 (en)
FR (1) FR2937763B1 (en)
WO (1) WO2010046480A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103441926B (en) * 2013-08-27 2016-12-28 西北工业大学 Security gateway system of numerically-controllmachine machine tool network
US10027616B2 (en) * 2016-07-18 2018-07-17 Plexus Meet, Inc. Proximity discovery system and method

Citations (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5483631A (en) * 1990-05-01 1996-01-09 Hitachi, Ltd. Communication network management system for displaying operation states of network elements on a remote display unit
US6088804A (en) 1998-01-12 2000-07-11 Motorola, Inc. Adaptive system and method for responding to computer network security attacks
US6343290B1 (en) * 1999-12-22 2002-01-29 Celeritas Technologies, L.L.C. Geographic network management system
US20030023874A1 (en) * 2001-07-16 2003-01-30 Rudy Prokupets System for integrating security and access for facilities and information systems
US20030225876A1 (en) * 2002-05-31 2003-12-04 Peter Oliver Method and apparatus for graphically depicting network performance and connectivity
US20040049698A1 (en) * 2002-09-06 2004-03-11 Ott Allen Eugene Computer network security system utilizing dynamic mobile sensor agents
US6735630B1 (en) * 1999-10-06 2004-05-11 Sensoria Corporation Method for collecting data using compact internetworked wireless integrated network sensors (WINS)
US20060095461A1 (en) * 2004-11-03 2006-05-04 Raymond Robert L System and method for monitoring a computer environment
US7127743B1 (en) 2000-06-23 2006-10-24 Netforensics, Inc. Comprehensive security structure platform for network managers
US20070209075A1 (en) * 2006-03-04 2007-09-06 Coffman Thayne R Enabling network intrusion detection by representing network activity in graphical form utilizing distributed data sensors to detect and transmit activity data
US20070283005A1 (en) * 2006-06-06 2007-12-06 Beliles Robert P Dynamically responding to non-network events at a network device in a computer network
WO2007145623A1 (en) * 2006-06-13 2007-12-21 Adt Security Services, Inc. Video verification system and method for central station alarm monitoring
US20090002150A1 (en) * 2007-06-29 2009-01-01 Gita Technologies, Ltd. Protection of control networks using a one-way link
US7992209B1 (en) * 2007-07-19 2011-08-02 Owl Computing Technologies, Inc. Bilateral communication using multiple one-way data links
US20120239434A1 (en) * 2009-12-11 2012-09-20 Koninklijke Philips Electronics N.V. System and method for generating graphical representation of patient status

Patent Citations (15)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5483631A (en) * 1990-05-01 1996-01-09 Hitachi, Ltd. Communication network management system for displaying operation states of network elements on a remote display unit
US6088804A (en) 1998-01-12 2000-07-11 Motorola, Inc. Adaptive system and method for responding to computer network security attacks
US6735630B1 (en) * 1999-10-06 2004-05-11 Sensoria Corporation Method for collecting data using compact internetworked wireless integrated network sensors (WINS)
US6343290B1 (en) * 1999-12-22 2002-01-29 Celeritas Technologies, L.L.C. Geographic network management system
US7127743B1 (en) 2000-06-23 2006-10-24 Netforensics, Inc. Comprehensive security structure platform for network managers
US20030023874A1 (en) * 2001-07-16 2003-01-30 Rudy Prokupets System for integrating security and access for facilities and information systems
US20030225876A1 (en) * 2002-05-31 2003-12-04 Peter Oliver Method and apparatus for graphically depicting network performance and connectivity
US20040049698A1 (en) * 2002-09-06 2004-03-11 Ott Allen Eugene Computer network security system utilizing dynamic mobile sensor agents
US20060095461A1 (en) * 2004-11-03 2006-05-04 Raymond Robert L System and method for monitoring a computer environment
US20070209075A1 (en) * 2006-03-04 2007-09-06 Coffman Thayne R Enabling network intrusion detection by representing network activity in graphical form utilizing distributed data sensors to detect and transmit activity data
US20070283005A1 (en) * 2006-06-06 2007-12-06 Beliles Robert P Dynamically responding to non-network events at a network device in a computer network
WO2007145623A1 (en) * 2006-06-13 2007-12-21 Adt Security Services, Inc. Video verification system and method for central station alarm monitoring
US20090002150A1 (en) * 2007-06-29 2009-01-01 Gita Technologies, Ltd. Protection of control networks using a one-way link
US7992209B1 (en) * 2007-07-19 2011-08-02 Owl Computing Technologies, Inc. Bilateral communication using multiple one-way data links
US20120239434A1 (en) * 2009-12-11 2012-09-20 Koninklijke Philips Electronics N.V. System and method for generating graphical representation of patient status

Also Published As

Publication number Publication date
FR2937763B1 (en) 2010-11-12
FR2937763A1 (en) 2010-04-30
EP2351317B1 (en) 2014-04-23
WO2010046480A1 (en) 2010-04-29
EP2351317A1 (en) 2011-08-03
US20120023177A1 (en) 2012-01-26

Similar Documents

Publication Publication Date Title
US8332063B2 (en) Apparatus and method for process control using people and asset tracking information
EP2162867B1 (en) Protection of control networks using a one-way link
US8174378B2 (en) Human guard enhancing multiple site security system
US8350698B2 (en) Method and protocol for real time security system
EP2003815B1 (en) A data remote monitoring system of essential security and a monitoring method thereof
US20080109098A1 (en) Apparatus and method for integrating people and asset tracking information into a process control system
EP1784732A2 (en) Monitoring system
WO2021119140A1 (en) Centralized knowledge repository and data mining system
US20110302629A1 (en) Systems And Methods For Secure Network Interoperability and Management
US11818002B2 (en) Remote wireless sensors and systems including remote wireless sensors
CN106302540A (en) Communications network security detecting system based on substation information safety and method
US9270688B2 (en) Tool for the centralized supervision and/or hypervision of a set of systems having different security levels
KR101544110B1 (en) Supervisory control and data acquisition system
KR100773033B1 (en) Remote Fault Data Aquisition System of Digital Protection Relay and Process Method thereof
JP2013047946A (en) Computer network based hazardous condition monitoring system and hazardous condition processing server
CN105721237A (en) Equipment and network health monitoring using security systems
CN111385539A (en) Data tampering preventing environment monitoring system
CN211720652U (en) Data tampering preventing environment monitoring system
Mary et al. Time analysis of wireless controller area network-based fire and gas safety system
Tankard How secure is your building?
KR200418172Y1 (en) Remote Fault Data Aquisition System of Digital Protection Relay
JP2002278796A (en) System for monitoring remote device
GB2525883A (en) Alarm network communication
Medida Pocket guide on industrial automation
KR100788433B1 (en) a signal transmission or a receiving apparatus used internet network of the main device from telephone wire of unmaned guard system

Legal Events

Date Code Title Description
AS Assignment

Owner name: THALES, FRANCE

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:LINDEN, JEAN-CHRISTOPHE;BRETON, SEBASTIEN;OGER, PIERRE;REEL/FRAME:026664/0241

Effective date: 20110726

STCF Information on status: patent grant

Free format text: PATENTED CASE

FEPP Fee payment procedure

Free format text: MAINTENANCE FEE REMINDER MAILED (ORIGINAL EVENT CODE: REM.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

LAPS Lapse for failure to pay maintenance fees

Free format text: PATENT EXPIRED FOR FAILURE TO PAY MAINTENANCE FEES (ORIGINAL EVENT CODE: EXP.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STCH Information on status: patent discontinuation

Free format text: PATENT EXPIRED DUE TO NONPAYMENT OF MAINTENANCE FEES UNDER 37 CFR 1.362

FP Lapsed due to failure to pay maintenance fee

Effective date: 20200223